🐙 Passive subdomain discovery and port scanning tool that blends crt.sh, AnubisDB, and Shodan InternetDB for free, no-API reconnaissance with CSV, MD reports.
A Bash Script For Finding Subdomains Using Different Tools ( SubFinder, AssetFinder, Sublist3r, Github_subdomains, Subdomain Center And AlienVault, Findomain, crt.sh )
Subtron is a professional grade subdomain enumeration toolkit designed for security researchers, penetration testers, and bug bounty hunters. It automates the discovery of subdomains by integrating multiple industry-standard tools such as Amass, Subfinder, Assetfinder, Httpx, and crt.sh. The results are consolidated, deduplicated, and organized.
Straight forwards, sudo-less and whole full web domain reconnaissance and mapping tool.
A robust and comprehensive subdomain enumeration tool that leverages multiple APIs and techniques to discover subdomains efficiently.
🚀 Pipeline automatizado para enumeração massiva de subdomínios — Subfinder + AssetFinder + AmassEnum + Findomain + Cert.sh + HTTPX. Docker, wordlists e APIs integradas. Feito para Pentesters e Bug Bounty Hunters.
certificate transparency search for domains and subdomains [basher package]
An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
Bug Bounty Vps Setup Tools
Automated script for sub domain enum using subfinder,alienvault,cert.sh and others
Free paasive subdomain discovery & top port scanner using subdomain sources + Shodan InternetDB. No API keys required! Perfect for bug bounty, penetration testing & security research. macOS/Linux compatible."
SubHound is a bash script that performs automated subdomain reconnaissance. Just run the script and follow the instructions!
0xSubZero is an advanced automated subdomain enumeration tool for bug bounty hunters, penetration testers, and security researchers. It gathers subdomains using both passive and active techniques, consolidates the results, checks for live subdomains, and generates a structured HTML report.
Fast live subdomain enumeration tool
Precon is a versatile subdomain discovery tool that automates passive reconnaissance by leveraging multiple tools. Ideal for cybersecurity professionals, it simplifies the process of identifying subdomains, enhancing the efficiency of web application security assessments.
Automatic script for subdomain enumeration and vulnerability scanning using Acunetix API.
Automated Recon Script for Bug Bounty Hunting This Bash-based recon tool automates essential reconnaissance tasks for bug bounty hunting and ethical hacking. It performs port scanning, web content discovery, certificate enumeration, and detects subdomain takeover opportunities. Designed for both interactive and multi-mode scanning.
A powerful bash tool for subdomain enumeration using multiple sources.
Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)
Recon Tool for Penetration Testing
Add a description, image, and links to the subdomain-enumeration topic page so that developers can more easily learn about it.
To associate your repository with the subdomain-enumeration topic, visit your repo's landing page and select "manage topics."